Cybersecurity Incident Response (IR) teams mitigate the impact of adverse cyber-related events in organisations. Field studies of IR teams suggest that at present the process of IR is underdeveloped with a focus on the technological dimension with little consideration of practice capability. To improve IR capabilities, we develop a scenario-based training approach to assist organisations to overcome socio-technical barriers to IR. The training approach is informed by a comprehensive list of socio-technical barriers compiled from a review of the literature. Our primary contribution is a novel meta-level framework to generate scenarios specifically targeting socio-technical issues. As a first step towards demonstrating the utility of the fram...
Organized, sophisticated and persistent cyber-threat-actors pose a significant challenge to large, h...
Information security incident response is a critical security process for organisations aiming to pr...
AbstractA cybersecurity hazard in a Critical Infrastructure (CI) is not only about computer malfunct...
PurposeThis paper aims to discuss the experiences designing and conducting an experiential learning ...
As cyber threats and attacks are immensely increasing and broadly spreading catastrophically worldwi...
As the threat of a cyber-attack looms larger each day and data breaches continue to happen, it is ti...
In this paper we discuss a work in progress to create a socio-technical system design framework for ...
Effective response to information security incidents is a critical function of modern organisations....
Cyber incident response within Industrial Control Systems (ICS) is characterised by high levels of u...
Abstract: Traditional cyber-incident response models have not changed signifi cantly since the early...
Increased dynamism and complexity of cybersecurity threat environments mean that traditional approac...
Following the advent of Industry 4.0, there have been significant benefits to industrial process opt...
Cyber security incident handling is a consistent methodology with which to ensure overall business c...
Organizations today face a significant challenge in protecting their valuable IT assets. Cyber crimi...
This thesis examines the cybersecurity incident response problem using a socio-technical approach. T...
Organized, sophisticated and persistent cyber-threat-actors pose a significant challenge to large, h...
Information security incident response is a critical security process for organisations aiming to pr...
AbstractA cybersecurity hazard in a Critical Infrastructure (CI) is not only about computer malfunct...
PurposeThis paper aims to discuss the experiences designing and conducting an experiential learning ...
As cyber threats and attacks are immensely increasing and broadly spreading catastrophically worldwi...
As the threat of a cyber-attack looms larger each day and data breaches continue to happen, it is ti...
In this paper we discuss a work in progress to create a socio-technical system design framework for ...
Effective response to information security incidents is a critical function of modern organisations....
Cyber incident response within Industrial Control Systems (ICS) is characterised by high levels of u...
Abstract: Traditional cyber-incident response models have not changed signifi cantly since the early...
Increased dynamism and complexity of cybersecurity threat environments mean that traditional approac...
Following the advent of Industry 4.0, there have been significant benefits to industrial process opt...
Cyber security incident handling is a consistent methodology with which to ensure overall business c...
Organizations today face a significant challenge in protecting their valuable IT assets. Cyber crimi...
This thesis examines the cybersecurity incident response problem using a socio-technical approach. T...
Organized, sophisticated and persistent cyber-threat-actors pose a significant challenge to large, h...
Information security incident response is a critical security process for organisations aiming to pr...
AbstractA cybersecurity hazard in a Critical Infrastructure (CI) is not only about computer malfunct...